1ca7025e62bc8fa5186a3af74f3795cc8e2b53cc888002c80ecedd5dc70a7e4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ca7025e62bc8fa5186a3af74f3795cc8e2b53cc888002c80ecedd5dc70a7e4b
Size

20KB
Sample

221019-sylmbsebdq
MD5

a21200f5070f77f0ad42266a96968750
SHA1

d3aac7c3572851be156f093dfc3d195ddb70bd62
SHA256

1ca7025e62bc8fa5186a3af74f3795cc8e2b53cc888002c80ecedd5dc70a7e4b
SHA512

31a0d9a6a9cda18c0f8d48036089b61fc9fc54804453d7274c79faa0c984d30b9ad3f3bb387fde51e882ed09d0f7b5911a5417932268a26a5e8ed1127b2fe2f7
SSDEEP

192:oZ+f8PcQcQLHtJx1sgYrHHstHNTgR09DBH4tf95BYyenSuXnTMCd1cpN2:uzP7cQB1sgKWt0R+DB295BdenlICdP

Score

8^/10

Malware Config

Targets

- Target
  
  1ca7025e62bc8fa5186a3af74f3795cc8e2b53cc888002c80ecedd5dc70a7e4b
- Size
  
  20KB
- MD5
  
  a21200f5070f77f0ad42266a96968750
- SHA1
  
  d3aac7c3572851be156f093dfc3d195ddb70bd62
- SHA256
  
  1ca7025e62bc8fa5186a3af74f3795cc8e2b53cc888002c80ecedd5dc70a7e4b
- SHA512
  
  31a0d9a6a9cda18c0f8d48036089b61fc9fc54804453d7274c79faa0c984d30b9ad3f3bb387fde51e882ed09d0f7b5911a5417932268a26a5e8ed1127b2fe2f7
- SSDEEP
  
  192:oZ+f8PcQcQLHtJx1sgYrHHstHNTgR09DBH4tf95BYyenSuXnTMCd1cpN2:uzP7cQB1sgKWt0R+DB295BdenlICdP
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2